325 matches found
Cleartext Password Disclosure
Apache Syncope is vulnerable to Cleartext Password Disclosure. The issue arises from use of a hard-coded default AES key when AES-based password storage is enabled, allowing an attacker with access to the internal database to decrypt and recover user passwords...
EUVD-2024-55325
HCL Workload Scheduler stores user credentials in plain text which can be read by a local user...
CVE-2025-64056
File upload vulnerability in Fanvil x210 V2 2.12.20 allows unauthenticated attackers on the local network to store arbitrary files on the filesystem...
Fedora 42 : cef (2025-58193e3850)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-58193e3850 advisory. Update to 142.0.7444.162 High CVE-2025-12725: Out of bounds write in WebGPU High CVE-2025-12726: Inappropriate implementation in Views High...
Cinnamon kotaemon 安全漏洞
Cinnamon kotaemon is a RAG-based open source tool from Cinnamon Open Source. A security vulnerability exists in Cinnamon kotaemon version 0.11.0, which originates from storing plaintext passwords in client-side localStorage...
ROS-20251113-01
A vulnerability in the Omnibox component of the Google Chrome and Microsoft Edge browsers is related to writing outside the boundaries of the buffer. Exploitation of the vulnerability could allow an attacker acting remotely to escalate their privileges A vulnerability in the Safe Browsing compone...
Ceph 输入验证错误漏洞
Ceph is a file storage platform from Ceph open source. An input validation error vulnerability exists in Ceph 19.2.3 and earlier versions, which stems from improper handling of the x-amz-copy-source parameter and could lead to a denial of service...
CVE-2025-11216
Inappropriate implementation in Storage in Google Chrome on Mac prior to 141.0.7390.54 allowed a remote attacker to perform domain spoofing via a crafted video file. Chromium security severity: Low...
CVE-2025-34519
Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain an insecure hashing algorithm vulnerability. The product stores passwords using the MD5 hash function without applying a per‑password salt. Because MD5 is a fast, unsalted hash, an attacker who obtains the password database can...
KLA89198 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Storage can be exploited to cause denial of service or...
Microsoft Edge (Chromium) < 141.0.3537.71 Multiple Vulnerabilities
The version of Microsoft Edge installed on the remote Windows host is prior to 141.0.3537.71. It is, therefore, affected by multiple vulnerabilities as referenced in the October 9, 2025 advisory. - Use after free in Storage. CVE-2025-11460 - Heap buffer overflow in Sync. CVE-2025-11458 Note that...
SUSE CVE-2025-11460
Use after free in Storage in Google Chrome prior to 141.0.7390.65 allowed a remote attacker to execute arbitrary code via a crafted video file. Chromium security severity: High...
EUVD-2017-14777
Malware in sbrugna...
EUVD-2020-28641
Malware in sbrugna...
EUVD-2016-6004
Malware in sbrugna...
EUVD-2017-9965
Malware in sbrugna...
EUVD-2013-3527
Malware in sbrugna...
EUVD-2002-0484
Malware in sbrugna...
EUVD-2019-13781
Malware in sbrugna...
EUVD-2008-3884
Malware in sbrugna...